I quite enjoyed my recent foray into setting up an example Azure Firewall, so he's a sequel! 🙃
As before, the post will be screenshot heavy but not all screenshots, the plan is to deploy a vulnerable web application behind the WAF in blocking mode so we can see basic ...
It's been a while since I've done a Technical How-to, recently I wanted to get my head around Azure's firewall appliance, here's an example setup and in true MicroSoft style it comes complete with Point-n-Click screenshots! I'm assuming you at least know how to navigate ...
Something a little different for my site; this post is a soft-skill article. In job listing, or development plans its really common for Technical roles to include a soft skills component and I had kinda assumed it was filler content, how hard is it to talk to people?! A couple ...
If you look in the Cisco forums for scripts to backup ASAs you'll find various SSH / Expect , complicated examples... not sure why since in 2006 I showed it can be done with a single wget command ;-)
Recently I needed something that would support Multi-Context firewalls, so I pimped my ...
I'm sure there's a very good reason that the Tufin Secure Track User Guide (R14-1) has 8 pages of screenshots instead of including these 10 lines of config; I just don't yet know what the reason is :)
logging enable
logging timestamp
logging facility 23
logging message 111008 ...The checkpoint sk article isn't that helpful... what it should say is... If you have your encryption domain set as "defined by topology", then check your topology!
Juniper (JunOS) SRX's support ssh public key authentication.
nick> show configuration system login | display set
set system login user nick uid 2001
set system login user nick class super-user
set system login user nick authentication ssh-rsa "PASTE_KEY"
nick>
No-one likes to type passwords!
I've google'd and I cannot find a way of creating a firewall range style object in an ASA, you know the kind of thing whereby you want to allow IP addresses 192.168.1.10 thru 192.168.1.20 in an ACL.
In my frustration I have ...
I've just spotted this in the Cisco ASA 8.3 release notes...
You can now configure access rules that are applied globally, as well as access rules that are applied to an interface. If the configuration specifies both a global access policy and interface-specific access policies, the interface-specific policies ...
Firewalls will always be a key ingredient to network security, but not all firewalls are equal. Recently I've been forced into documenting how I decide & think about firewall rules...
Strict Firewalling
IMO Strict Firewalling is the traditional way to implement your traffic
policies (ACLS), each rule should be as ...
Page 1 / 2 »